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In the claims; 

Please amend the claims as follows: 
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1 06. (Cuirently Aii^ended) A microcontroller comprising: 
a memory stor 

a derivative application derived fix>m an application having a class file format 
wherein the qjplication is derived ftom an application having a class file format by 
first compiling the application having a class file format into a compiled form and 
then converting the compiled form into a converted form, and 

an interpreter configured to interpret d^vative applications in the converted 
form and derived fix>m applications havmg a class file format; and 

a processor coupled to the memory, the processor configured to use the interpreter 
to interpret the derivative application for execution. 



107, (Previously Added) The microdontroUer of claim 106, further comprising: 
a communicator configured to copmiunicate with a terminal. 

1 08. (Currently Amended) The raicrocoAtroUer of claim 1 07, wherein the terminal has 
a card reader and the communicator comprises a contact for commimicating with the card 
reader. 



109. (Previously Added) The microcontrollerV)f claim 108, wherein the terminal has a 
wireless communicator and a wireless transceivef for communicating with the wireless 
communication device. 

1 10. (Previously Added) The microcontroller of cljlim 108, wherein the terminal has a 
wireless communication device and the communicator comprises a wireless transmitter 
for communicating with the wireless communication device. 



111. (Previously Added) The microcontroller of claim 1 0^, wherein the class file 
format comprises a Java class file format. 
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112. (Previously Added) A microcontroller having a set of resource constraints and 
comprising: 

a m^ory, and 

an interpretenloaded in memory and operable within the set of resource constraints^ 
the microcontrollCT having: at least one application loaded in the mraiory to be 
interpreted by the it\terpreter, wherein the at least one s^plication is generated by a 
programming envirofament comprising: 

a) a compiler for wmpiling application source programs written in high level 
language source cocb form into a compiled form, and 

b) a converter for post processing the coiiq}iled form into a minimized form suitable 
for interpretation withiia the set of resource constraints by the interpreter. 



113. (Previously Added) Thb microcontroller of Claim 1 1 2, wherem the compiled 
form includes attributes, and th^onverter comprises a means for including attributes 
required by the interpreter while n^t including the attributes not required by the 
interpreter. 



1 14. (Previously Added) The microcitotroller of Qaim 1 12 wherein the compiled form 
is in a standard Java class file format ancMie converter accepts as input the compiled 
form in the standard Java class file formated produces output in a form suitable for 
inteq)retation by the Lnteipret^. 



1 15. (Previously Added) The microcontroller W Claim 1 12 wherein the compiled form 
includes associating an identifying string for objects, classes, fields, or methods, and the 
converter comprises a means for mapping such string to unique identifiers. 



1 1 6. (Previously Added) The microcontroller of Cla 
identifier is an integer. 



[ 1 S wherein each unique 
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1 17. (iVeviously Added) The microcontroller of Claim 115 wherein the mapping of 
strings to ubique identifiers is stored in a string to identifier map file. 

1 18. (PrevioiMy Added) The microcontroUer of Claim 1 12 where in the high level 
language supportsSa first set of features and a first set of data types and the interpreter 
supports a subset orflie first set of features and a subset of the first set of data types, and 
wherein the convertero^erifies that the compiled form only contains features in the subset 
of the first set of feature^ and only contains data types in the subset of the first set of data 
types. 



119. (Previously Added) lite microcontroller of Claim 1 15 herein the compiled form 
is in a byte code format and fheVonverter comprises means for translating from the byte 
codes in the compiled form to byf^ codes in a format suitable for interpretation by the 
interpreter by: 



using at least one step in a process including the steps: 

a) recording all jumps and their destinations in the original byte codes; 

b) converting specific byte codes into equivalen^eneric byte codes or vice-versa; 

c) modifying byte code operands firom references using identifying strings to references 
using unique identifiers; and 

d) renumbering byte codes in the compiled form to equivalent byte codes in the format 
suitable for interpretation; and 

relinking jumps for which destination address is efFected^y conversion step a)> bX cX or 
d). 
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120. (Brevioxisly Added) The microcontroller of Claim 1 12 wherein the application 
program is^compiled into a compiled form for which resources required to execute or 
interpret the\pompiled form exceed those available on the microcontroller. 

121. (Previoikly Added) The microcontroller of Claim 112 wherein the compiled form 
is designed for po^bility on different conq>uter platfomos. 



122. (Previously Added) The microcontroller of Claim 112 wherein the interpreter is 
further configured to &termine, during an inteq>retation of an application, whether the 
application meets a sec^ty criteria selected fix)m a set of rules containing at least one 
rule selected fiom the se 

not allowing the £q>plicVtion access to unauthorized portions of memory, 
not allowing the ^plication access to unauthorized microcontroller resources, 
wherein the application is ^composed of byte codes and checking a plurality of byte 
codes at least once prior to execution to verify that execution of the byte codes does 
not violate a security constraint 

123. (Previously Added) The miciocontroller of Claim 112 wherein at least one 
application program is generated by aprocess including the steps of: 

prior to loading the s^plication verimng that the ^plication does not violate any 
security constraints; and 
loading the application in a secure manner. 



124. (Previously Added) The microcontroUer of Claim 123 wherein the step of loading 
in a secure manner comprises the step of: 

verifying that the loading identity has permission to load apphcations onto the 
microcontroller. 



125. (Previously Added) The microcontroller of Cl 
in a secure manner comprises the step of: 
encrypting the plication to be loaded using a loading 1 



123 wherein the step of loading 
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1 26. Previously Added) A method of programming a microcontroller having a 
memory md a processor operating according to a set of resource constraints, the method 
comprisingithe steps of: 

inputting an application program in a first programming language; 

compiimg the ^qiplication program in ttie first programming language into a first 
intermediate coae associated with the first programming language, wherein the first 
intermediate code^being interpretable by at least one first intemiediate code virtual 
machine; 

converting the first intermediate code into a second intermediate code; wherein 
the second intermediate code is interpretable within the set of resoiirce constraints by at 
least one second intermediate code virtual machine; and 

loading the second intermediate code into the memory of the microcontroller. 

127, (Previously Added)Yhe method of programming a microcontrollo: of Claim 126 
wherein the step of converting fiurther comprises: 

associating an identifying string for objects, classes, fields, or methods; and mapping 
such strings to unique identified. 



128. (Previously Added) The method of Claim 127 wherein the step of mapping 
comprises the step of mapping strings to integers. 



129. (Previously Added) The method c^f Claim 126 wherein the step of converting 
comprises at least one of the steps of: 

a) recording all jumps and their destinations inNttie original byte codes; 

b) conv^ting specific byte codes into equivalmt generic byte codes or vice-versa; 

c) modifying byte code operands &om references u^ng identifying strings to references 
using unique identifiers; 

d) renumbering byte codes in a compiled format to equivalent byte codes in a format 
suitable for interpretation; and 
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e) r^inking jumps for which destination address is effected by conversion step a), b), c), or 

130. \ (Previously Added) The method of Claim 126 wherein the step of loading the 
second uUermediate code into the memory of the microcontroller further comprises 
checking me second intermediate code prior to loading the second intermediate code to 
verify that tne second intermediate code meets a predefined integrity check and that 
loading is per^^ed according to a security protocol 



# 12/ 28 



131. (PreviousljAAdded) The method of Claim 1 30 wherein the security protocol 
requires that a particular identity must be validated to permit loading prior to the loading 
of the second intermediate code. 




1 32. (Previously Added)Xrhe method of Claim 130 further characterized by providing 
a decryption key and whereiiMie security protocol requires that the second intermediate 
code is encrypted using a loading key corresponding to the decryption key. 

1 33, (Currently Amended) A microcontroller operable to execute derivative programs 
which are derivatives of programs written in an interpretable programming language 
having a memory and an interpreter, thkmicrocontroUer comprising: 



(a) the microcontroller operating within a set oJKresource constraints including the memory 
being of insufficient size to permit interpretatt^n of programs written in the interpretable 
programming language; and 

(b) the memory containing an interpreter operable to Interpret the derivative programs 
written in the derivative of the interpretable language wherein a derivative of a program 
written in the interpretable programming language is oerived &om the compiled version 
of a program written in the interpretable prograirmiing Rmguage by applying a conversion 
of the compiled version including applying at least one nu^ selected firom a set of rules 
including: 

(1) mapping strings to id^tifiers; 

(2) performing security checks prior to or during interpretatibn; 
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(3) performing structural checks prior to or during interpretation; and 

(4) performing semantic checks prior to or during interpretation. 

134. (Prevk)usly Added) The microcontroller of Claim 133 wherein the derivative 
programs are class files or derivatives of class files. 

135. (PreviouslysAdded) The microcontroller of Claim 133 further conq)rismg: 
the memory containiW less than 1 megabyte of storage. 

136. (Previously Add^ The microcontroller of Claim 133 wherein the security checks 
the microcontroller is furth^ comprising: 

(c) logic to receive a request fit>nia requester to access one of a plurality of derivative 
programs; \ 

(d) after receipt of the request, determine whether the one of a plurality of derivative 
programs complies with a predetemmed set of rules; and 

(e) based on the determination, selectivelySgrant access to the requester to the one of the 
plurality of applications. \ 

137. (Previously Added) The microcontrolW of Claim 136, wherein Ae predetermined 
rules are enforced by ttie interpreter while the derivative program is being interpreted by 
determining whether the derivative program has a^ess rights to a particular part of 
memory the derivative program is attempting to accli^s. 

138. (Previously Added) The microcontroller of Claim 133 further wherein the 
microcontroller is configured to perform at least one secimty check selected fiom the set 
having the members: \ 

(a) enforcing predetermined security rules while ttie derivative program is being interpreted, 
thereby preventing the derivative program Scorn accessing imautnbrized portions of 
memory or other unauthorized microcontroller resources, \ 
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(b) the inteq>reter being configured to check each bytecode at least once prior to execution 
to olstennine that the bytecode can be executed in accordance with pre-execution and 
post-execution checks, and 

(c) the denVative program is checked prior to being loaded into the microcontroller to verify 
the integrity of the derivative program and loading is performed according to a security 
protocol. 



139. (Previo^isly Added) The microcontroller of Claim 138 wherein the security 
protocol requir^that a particular identity must be validated to permit loading a 
derivative progra^ onto a card. 




140. (Previously AMded) 
decryption key whereinvthe 
loaded is encrypted 



The microcontroller of Claim 138 further comprising a 
security protocol requires that a derivative program to be 
loading key corresponding to the decryption key. 



141. (Previously Added) The microcontroller of Claim 133 wherein the 
microcontroller is configured toyprovide cryptographic services selected fiom the set 
including encryption, deciyption,\igning, signature verification, mutual authentication, 
transport keys, and session keys. 



142. (Previously Added) The microcontroller of Claim 133 further comprising a fiile 
system and wherein the microcontroller is\onfigured to provide secure access to the file 
system through a means selected fix>m the set including: 



(a) the microcontroller having access control lists for\^uthorizing reading fiom a file, writing 

to a file, or deletion of a file, 
<b) the microcontroller enforcing key validation to establish the authorized access to a file, 

and 

(c) the microcontroller verifying card holder identity to estabtigh the authorized access to a 
file. 
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143, 
compns 



ently Amended) An integrated circuit card for use with a terminal. 




a comniunicator configured to communicate with the terminal; 
a meiribry storing: 

an arolication derived firom a program written in a hig|i level programming 
language format wherein the application is derived fix>m a program written in a high 
level prograinnung language format by first compiling the program into a compiled 
form and then converting the compiled form into a converted form, the converting 
step including modifying byte code operands firom references using identifying 
strings to references lining unique identifiers; and 

an interpreter oi)erable to interpret such a derivative application in the 
converted form and derived fix)m a program written in a high level programming 
language format; and 

a processor coupled to t^ memory, the processor configured to use the interpreter 
to interpret the application for execution and to use the communicator to communicate 
with the terminal. 



144. (Previously Added) The integrate^ circuit card of Claim 143 wherein the 
converting step fiirther comprises: 

recording all jumps and their destinaiipns in the original byte codes; 

converting specific byte codes into eqiuyalent generic byte codes or vice-versa; 

and 

renumbering byte codes in a con^iled format to equivalent byte codes in a format 
suitable for interpretation. 



# 15/ 2d 



ll 



145. (Previously Added) A method for use with\an integrated circuit card and a 
terminal, comprising: 

storing an interpreter operable to interpret program)s derived from programs 
written in a high level programming language and an application derived from a program 
written in a high level programming language format in a memory of the integrated 
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yJ / circuit card wherein the application is d^ved from a program written in a high level 

^ / / proglanmiing language format by first compiling the program into a compiled form and 

ly 7 then convertuig the compiled form into a converted form, the converting step including 

/ modifying byte code operands from references using identifying strings to references 

/ using unique identifiers; and 

using processor of the integrated circuit card to use the interpreter to interpret 
the application Kur execution; and 

using a conmiunicator of the card when commtmicating between the processor 
and the terminal. \ 

146. (Previously AddedMlie method of Claim 145 wherein flie converting step further 
comprises: \ 

recording all jumps anoSdieir destinations in the original byte codes; 
converting specific byte (x^es into equivalent generic byte codes or vice-versa; 
and \ 

renumbering byte codes in a compiledSformat to equivalent byte codes in a format 
suitable for interpretation, \ 

147, (Previously Added) An integrated ciicuit card for use with a terminal, comprising: 

a communicator configured to commuAu:ate with the terminal; 

a memory storing: \ 

applications, each application derived nW applications having a high level 
programming language format, and \ 

an interpreter operable to interpret apnlications derived from 
applications having a high level progrWning language format 
wherein the application is derived fi^om ^program written in a high 
level programming language format by first compiling the program 
into a compiled form and then converting theS:ompiled form into a 
converted form, the converting step including rm^fying byte code 

11 
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operands fix>m reference using identifying strings to references using 
unique identifiers; and 

a processor counled to the memory, the processor configured to: 

a. ) use the interpreter to interpret the applications for execution, 

b. ) use the interpreter to create a firewall to isolate the applications fixnn each 
other, and 

c.) use the communicator t^ communicate with the terminal. 

148. (Previously Added) VThe integrated circuit card of Claim 147 wherein the 
interpreter is further operable to mterpret applications derived using a converting step 
including: 

recording all jumps and their destinations in the original bj^e codes; 
converting specific byte co<^es into equivalent generic byte codes or vice-versa; 

and 

renumbering byte codes m a compilec^ormat to equivalent byte codes in a format 
suitable for interpretation. 

149. (Currently Amended) A microconkpoller operable to execute derivative programs 
which are derivatives of programs writt^ in an interpretable programming language 
having a memory and an interpreter, the microcontroller comprising: 

the microcontroller operating within a set of resource constraints including the 
memory being of insufificient size to permit inteaspretation of programs written in the 
interpretable programming language; and 

the memory containing an interpreter opCTable to interpret the derivative programs 
written in the derivative of the interpretable language wherein a derivative of a program 
written in the interpretable programming language is aerived fcorn a compiled for of the 
program written in the interpretable programming langijage by performing a conversion 
including mapping strings to identifiers. 
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